Case Studies

Forex: Contest Application

Forex contest application is the fairest competition with cash money prizes. Contests are held every day and money prizes are transferred to winners’ bank accounts or to the Forex trading accounts. Users can choose the variant which fits them best.

QATestLab company has performed security testing in order to verify that the resource doesn’t have vulnerability in web-applications (XSS, SQLinj, LFI, RFI, HPP, CSRF and others).

Our testing engineers revealed weak points in terms of compromise (sessions, hashes, keys, etc). Moreover there were identified errors in the logic of web application’s work with the aim to get the escalation of privilege, disclosure of data, etc.

There were also revealed vulnerabilities in software that provides the proper functionality of web-application.